6f7efb0602db3eb1c37ad77d7e90772b_JaffaCakes118

General

Target

6f7efb0602db3eb1c37ad77d7e90772b_JaffaCakes118
Size

314KB
MD5

6f7efb0602db3eb1c37ad77d7e90772b
SHA1

9120169d486dea62ed99551d0a23b573ddd8deb0
SHA256

2c32f0acca25221cfbc63140c2f62e740e3a26e95a0816ceda44bf64e3c74dc0
SHA512

7c71258ef8f1b913b1b3611d6a3bea989eb3373c719d0dc0e34d21977bc7cf0d21ee887e7ffc81bac38efade3e8d29377ed824641a01ee4be765fd7f98c253f7
SSDEEP

6144:ZhkrbFycdluHcTviDxuloPj+uYLhgLpaBLKuk4GUzPvT4XML:bkrbddlu8TviDxSoPKuYL7LKVIT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f7efb0602db3eb1c37ad77d7e90772b_JaffaCakes118

Files

6f7efb0602db3eb1c37ad77d7e90772b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fa27579e33dc200ea6431074081f00ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

CreateSolidBrush
GetDeviceCaps
CreateDCA
DeleteObject
DeleteDC

user32

GetMenuCheckMarkDimensions
EnumDisplayMonitors
GetSysColor
EnumWindowStationsW
GetDC
GetMonitorInfoA
GetSystemMetrics
SystemParametersInfoA
ReleaseDC
GetKeyboardLayout

kernel32

SetFileAttributesW
GlobalFree
GetCurrentProcessId
ReleaseMutex
GetModuleFileNameA
LoadLibraryExW
FreeLibrary
GetVersionExW
FlushFileBuffers
CreateMutexA
OpenMutexA
CreateProcessA
WriteFile
GetFileAttributesW
GetDiskFreeSpaceExW
GetSystemTimeAsFileTime
CreateSemaphoreA
OutputDebugStringA
LoadLibraryA
GetCurrentProcess
ExitProcess
DeleteFileW
FlushFileBuffers
GetModuleHandleW
GetFileType
LoadLibraryW
GetVersion
GetSystemInfo
CloseHandle
GetProcessTimes
SetUnhandledExceptionFilter
GetSystemDirectoryW
ExpandEnvironmentStringsW
LocalFree
LocalAlloc
CreateFileW
GetUserDefaultLCID
GetTimeZoneInformation
GetShortPathNameA
GetTickCount
GetProcAddress

secur32

GetUserNameExW

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa27579e33dc200ea6431074081f00ff

Headers

File Characteristics

Imports

gdi32

user32

kernel32

secur32

Sections

.text Size: 206KB - Virtual size: 205KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 100KB

.venue Size: 5KB - Virtual size: 78KB

.text
Size: 206KB - Virtual size: 205KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 100KB

.venue
Size: 5KB - Virtual size: 78KB